Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / kubernetes/committee-security-response issues and pull requests

#92 - Master Issue: Repo SECURITY_CONTACTS should list repo-specific contact people, not PSC members.

Issue - State: closed - Opened by joelsmith over 4 years ago - 5 comments
Labels: lifecycle/rotten, sig/security

#91 - Remove Jordan Liggitt from PSC (stepping down)

Pull Request - State: closed - Opened by joelsmith over 4 years ago - 5 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#90 - sig-release: Update Release Manager roles

Pull Request - State: closed - Opened by justaugustus over 4 years ago - 3 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#89 - Add GitHub PSC group to on/offboard process

Pull Request - State: closed - Opened by joelsmith over 4 years ago - 2 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#88 - Promote associate Craig Ingram (@cji) to the PSC

Pull Request - State: closed - Opened by joelsmith over 4 years ago - 10 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#87 - Add GPG key info for joelsmith

Pull Request - State: closed - Opened by joelsmith over 4 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#86 - Add acknowledgements back to email template

Pull Request - State: closed - Opened by tallclair over 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#85 - Add Sam Fowler as associate member

Pull Request - State: closed - Opened by lukehinds over 4 years ago - 7 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#84 - Fix typo in email template

Pull Request - State: closed - Opened by tallclair over 4 years ago - 2 comments
Labels: size/XS, cncf-cla: yes, committee/security-response

#83 - Disclosure changes

Pull Request - State: closed - Opened by cji over 4 years ago - 9 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#82 - private-distributors-list: add Kinvolk

Issue - State: closed - Opened by vbatts over 4 years ago - 4 comments

#81 - [idea] evaluate vulnerabilities against multiple security models

Issue - State: closed - Opened by tallclair over 4 years ago - 4 comments
Labels: lifecycle/rotten

#80 - Autorespond [email protected] -> hackerone?

Issue - State: closed - Opened by lukehinds over 4 years ago

#79 - Change 'will' to 'may' for creation of private branches

Pull Request - State: closed - Opened by eparis over 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#78 - Link to our announcement templates from the process doc.

Pull Request - State: closed - Opened by cjcullen over 4 years ago - 6 comments
Labels: needs-rebase, lifecycle/rotten, size/XS, cncf-cla: yes, committee/security-response

#77 - private-distributors-list: add DigitalOcean

Issue - State: closed - Opened by MorrisLaw over 4 years ago - 2 comments

#76 - Remove @jonpulsifer, @philips from SECURITY_CONTACTS, add @micahhausler

Pull Request - State: closed - Opened by jonpulsifer over 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#75 - Offboard Jonathan Pulsifer

Issue - State: closed - Opened by jonpulsifer over 4 years ago - 1 comment

#74 - Update oncall responsibilities with links to queries

Pull Request - State: closed - Opened by liggitt over 4 years ago - 3 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#73 - Proposal to add Mo Khan as an associate member

Pull Request - State: closed - Opened by liggitt over 4 years ago - 6 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#72 - Add Craig Ingram (@cji) as associate member

Pull Request - State: closed - Opened by joelsmith over 4 years ago - 6 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#71 - Fix typos

Pull Request - State: closed - Opened by tallclair over 4 years ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#70 - PSC on/offboarding

Pull Request - State: closed - Opened by tallclair over 4 years ago - 7 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#69 - Update CNA handbook

Pull Request - State: closed - Opened by liggitt over 4 years ago - 3 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#68 - "fix a invalid url"

Pull Request - State: closed - Opened by wyyxd2017 over 4 years ago - 7 comments
Labels: needs-rebase, lifecycle/rotten, size/XS, cncf-cla: yes, committee/security-response

#67 - Add CNA details

Pull Request - State: closed - Opened by liggitt over 4 years ago - 3 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#66 - Convert PSC workflow to markdown & publish

Pull Request - State: closed - Opened by tallclair over 4 years ago - 2 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#65 - Add cross-link back to PSC page

Pull Request - State: closed - Opened by mayakacz over 4 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#64 - Removed note about having at least 7 PSC members

Pull Request - State: closed - Opened by mayakacz over 4 years ago - 4 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#63 - Update `security-release-process.md` with ref to security-release-team@ email

Issue - State: open - Opened by lukehinds almost 5 years ago - 16 comments
Labels: lifecycle/frozen

#62 - Minor template cleanup

Pull Request - State: closed - Opened by tallclair almost 5 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#61 - Update vulnerability announcement template & add issue template

Pull Request - State: closed - Opened by tallclair almost 5 years ago - 4 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#60 - Deduplicate distributors announce membership

Pull Request - State: closed - Opened by tallclair almost 5 years ago - 5 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#59 - Include distributors-announce in public security announcements

Pull Request - State: closed - Opened by tallclair almost 5 years ago - 9 comments
Labels: needs-rebase, lifecycle/rotten, size/XS, cncf-cla: yes, committee/security-response

#58 - Develop security requirements for Kubernetes subprojects to graduate to GA

Issue - State: closed - Opened by tallclair almost 5 years ago - 13 comments
Labels: help wanted, lifecycle/rotten, sig/security

#57 - Kubernetes vulnerability dashboard

Issue - State: closed - Opened by tallclair almost 5 years ago - 21 comments
Labels: help wanted, lifecycle/rotten

#56 - SECURITY_CONTACTS contact information

Issue - State: open - Opened by tallclair almost 5 years ago - 18 comments
Labels: help wanted, lifecycle/frozen

#55 - Improve process & documentation for non-k/k projects

Issue - State: open - Opened by tallclair almost 5 years ago - 6 comments
Labels: help wanted, lifecycle/frozen

#54 - Improve Process Documentation for Embargoed Releases

Issue - State: closed - Opened by tallclair almost 5 years ago - 10 comments
Labels: help wanted, lifecycle/rotten

#53 - More consistent security-announcements

Issue - State: closed - Opened by tallclair almost 5 years ago - 5 comments

#52 - OWNER_ALIASES: add Luke Hinds

Pull Request - State: closed - Opened by philips almost 5 years ago - 8 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#51 - README: add Luke Hinds to Security Committee

Pull Request - State: closed - Opened by philips almost 5 years ago - 5 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#50 - Update private-distributors-list.md

Pull Request - State: closed - Opened by swamymsft about 5 years ago - 8 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#49 - Sync security-release-process.md with HackerOne

Issue - State: closed - Opened by martijnrusschen about 5 years ago - 4 comments
Labels: help wanted, lifecycle/rotten

#48 - private-distributors-list: add Loodse

Issue - State: closed - Opened by scheeles about 5 years ago - 3 comments

#47 - Adding kubernetes-announce and discourse addresses to the email template

Pull Request - State: closed - Opened by jonpulsifer about 5 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#46 - Tracking Issue for Third-party Security Audit Findings and Resulting Issues

Issue - State: closed - Opened by joelsmith about 5 years ago - 3 comments

#45 - Update references to Release Managers private mailing list

Pull Request - State: closed - Opened by justaugustus about 5 years ago - 5 comments
Labels: lgtm, approved, sig/release, size/L, cncf-cla: yes, committee/security-response

#44 - Order CVE Identifiers by release, not by issue received.

Issue - State: closed - Opened by micahhausler about 5 years ago - 5 comments
Labels: lifecycle/rotten

#43 - Fix Associate link in README

Pull Request - State: closed - Opened by cji about 5 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#42 - updated docs on SIG Release connection

Pull Request - State: closed - Opened by tpepper about 5 years ago - 3 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#41 - Update security-release-process.md

Pull Request - State: closed - Opened by swamymsft about 5 years ago - 2 comments
Labels: size/S, cncf-cla: no, committee/security-response

#40 - Updating README.MD to include the PSC members and contacts

Pull Request - State: closed - Opened by swamymsft about 5 years ago - 10 comments
Labels: lgtm, approved, size/M, cncf-cla: yes, committee/security-response

#39 - Revisit response timelines

Issue - State: closed - Opened by tallclair about 5 years ago - 15 comments
Labels: lifecycle/rotten

#38 - Promote Jon Pulsifer to full PSC member

Pull Request - State: closed - Opened by tallclair about 5 years ago - 6 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#37 - Add guide for both on/offboarding PSC members

Pull Request - State: closed - Opened by lukehinds about 5 years ago - 8 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#36 - Fix internal links in release process doc

Pull Request - State: closed - Opened by joelsmith over 5 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#35 - security-release-process: add two new associate members

Pull Request - State: closed - Opened by philips over 5 years ago - 4 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#34 - docs: fixup README

Issue - State: closed - Opened by philips over 5 years ago - 2 comments

#33 - docs: create on-boarding and off-boarding docs

Issue - State: closed - Opened by philips over 5 years ago - 4 comments
Labels: lifecycle/rotten

#32 - private-distributors-list: add canonical

Pull Request - State: closed - Opened by philips over 5 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#31 - security-release-process: document maximal representation state

Pull Request - State: closed - Opened by philips over 5 years ago - 5 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#30 - Add oss-security[at]lists.openwall.com to security announcements.

Pull Request - State: closed - Opened by bjhaid over 5 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#29 - Add Ubuntu Security to security list for Kubernetes.

Issue - State: closed - Opened by joemcmanus over 5 years ago - 3 comments

#28 - Add guidance on when to handle reported vulnerabilities publicly and semi-publicly

Pull Request - State: closed - Opened by cjcullen over 5 years ago - 4 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#27 - Use go.k8s.io for pointing to OWNERS docs

Pull Request - State: closed - Opened by rlenferink over 5 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#26 - Update security disclosure guidelines for features

Issue - State: closed - Opened by jzebor over 5 years ago - 4 comments
Labels: lifecycle/rotten

#25 - Change distributor applications from email to issues

Pull Request - State: closed - Opened by tallclair over 5 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#24 - private-distributors-list: testing PR template

Pull Request - State: closed - Opened by philips over 5 years ago - 3 comments
Labels: size/XS, cncf-cla: yes, committee/security-response

#23 - Change distributor applications from email to issues

Pull Request - State: closed - Opened by tallclair over 5 years ago - 14 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#22 - Update CVE request details, add issue publishing requirement

Pull Request - State: closed - Opened by liggitt over 5 years ago - 4 comments
Labels: lgtm, approved, size/S, lifecycle/stale, cncf-cla: yes, committee/security-response

#21 - Update @jonpulsifer's email and delete some spaces

Pull Request - State: closed - Opened by jonpulsifer over 5 years ago - 2 comments
Labels: lgtm, approved, size/L, cncf-cla: yes, committee/security-response

#20 - Update a few more PSC member references

Pull Request - State: closed - Opened by tallclair over 5 years ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#19 - email-templates: fix to -> do

Pull Request - State: closed - Opened by philips over 5 years ago - 4 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#18 - security-release-process: update philips's email

Pull Request - State: closed - Opened by philips over 5 years ago - 7 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#17 - document the things the security committee owns

Issue - State: closed - Opened by philips over 5 years ago - 14 comments
Labels: lifecycle/rotten

#16 - offboard Jess Frazelle

Issue - State: closed - Opened by philips over 5 years ago - 7 comments

#15 - remove jess from PST, thanks :)

Pull Request - State: closed - Opened by jessfraz over 5 years ago - 2 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#14 - Update checklist for pre-disclosure review process

Issue - State: closed - Opened by liggitt over 5 years ago - 5 comments
Labels: lifecycle/rotten

#13 - Update security announcement template

Issue - State: closed - Opened by liggitt over 5 years ago - 4 comments
Labels: lifecycle/rotten

#12 - Add distributors pre-announcement template

Issue - State: closed - Opened by liggitt over 5 years ago - 4 comments
Labels: lifecycle/rotten

#11 - Joel Smith: Onboarding to PST

Issue - State: closed - Opened by philips over 5 years ago - 6 comments

#10 - Private distributors: add OVH

Pull Request - State: closed - Opened by philips over 5 years ago - 3 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#9 - Clarify how distributors should communicate during embargoed issues

Issue - State: closed - Opened by philips over 5 years ago - 20 comments
Labels: help wanted, lifecycle/rotten

#8 - SECURITY_CONTACTS files in all Kubernetes project repos have old link

Issue - State: closed - Opened by joelsmith over 5 years ago - 3 comments

#7 - private-distributors-list: add Gravitational

Pull Request - State: closed - Opened by philips over 5 years ago - 5 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#6 - private-distributors-list: add Platform9

Pull Request - State: closed - Opened by philips over 5 years ago - 7 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#5 - Platform9

Pull Request - State: closed - Opened by philips over 5 years ago - 1 comment
Labels: size/XS, cncf-cla: yes, committee/security-response

#4 - New private-distributors membership

Pull Request - State: closed - Opened by gclem over 5 years ago - 9 comments
Labels: size/XS, cncf-cla: no, committee/security-response, do-not-merge/hold

#3 - security-release-process: nominate Joel Smith as full time member

Pull Request - State: closed - Opened by philips over 5 years ago - 9 comments
Labels: lgtm, approved, size/XS, cncf-cla: yes, committee/security-response

#2 - Change github.com/kubernets URLs to git.k8s.io

Pull Request - State: closed - Opened by joelsmith over 5 years ago - 2 comments
Labels: lgtm, approved, size/S, cncf-cla: yes, committee/security-response

#1 - Copy docs from sig-release, rename PST to PSC

Pull Request - State: closed - Opened by joelsmith over 5 years ago - 5 comments
Labels: lgtm, approved, cncf-cla: yes, committee/security-response, size/XL